Static task
static1
Behavioral task
behavioral1
Sample
4b2288104b4a5d05c11cde0fdf673188a6ab83c97d6a77b36dd1583c7021814a.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4b2288104b4a5d05c11cde0fdf673188a6ab83c97d6a77b36dd1583c7021814a.exe
Resource
win10v2004-20240508-en
General
-
Target
4b2288104b4a5d05c11cde0fdf673188a6ab83c97d6a77b36dd1583c7021814a
-
Size
40KB
-
MD5
c22589c358541f63cacf9a43754c4656
-
SHA1
9c37515c874b178cc9701cda352948ff5a0d11b6
-
SHA256
4b2288104b4a5d05c11cde0fdf673188a6ab83c97d6a77b36dd1583c7021814a
-
SHA512
442b6170bd4f6d0f38883a6ed1e0bec8e0da42dce4dcaac4d729407af526325d57534dea4141d7a66125a0d424bab17f351950d5351e444a74c45fde6061e2f3
-
SSDEEP
384:icuU5SCTDklL7rRdV0qGz9yDvVfwDTVm/IE2q95IcIUuNBdw/5A/1mwnA3J3BXRu:izUXTQjaEyVm195IcIjNQSkwy3BEP+I
Malware Config
Signatures
-
UPX dump on OEP (original entry point) 1 IoCs
resource yara_rule sample UPX -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4b2288104b4a5d05c11cde0fdf673188a6ab83c97d6a77b36dd1583c7021814a
Files
-
4b2288104b4a5d05c11cde0fdf673188a6ab83c97d6a77b36dd1583c7021814a.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
VHqxTUpa Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IaDsgWGk Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 23KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE